General
-
Target
e694f41b54e4c14e8f716cb66899360fd08d0aaf7b3cf00d49a1f1bc6842e1da
-
Size
411KB
-
Sample
211105-3vzpwsdac7
-
MD5
88116a3c0c589ec870be1cae8ba1b0f9
-
SHA1
75369dcfdee4f1a37fcc72ab938d63ab12682a0e
-
SHA256
e694f41b54e4c14e8f716cb66899360fd08d0aaf7b3cf00d49a1f1bc6842e1da
-
SHA512
80524353384a5cf09a2eb3ccf119e57d8d1d046b82ed11d96dc182e84eb9ebae0957bdecfd9186fa2b7c4738e629292a02dea446ad17816a9c0ced28fcdc7d0b
Malware Config
Extracted
redline
SomeBody
185.215.113.29:36224
Targets
-
-
Target
e694f41b54e4c14e8f716cb66899360fd08d0aaf7b3cf00d49a1f1bc6842e1da
-
Size
411KB
-
MD5
88116a3c0c589ec870be1cae8ba1b0f9
-
SHA1
75369dcfdee4f1a37fcc72ab938d63ab12682a0e
-
SHA256
e694f41b54e4c14e8f716cb66899360fd08d0aaf7b3cf00d49a1f1bc6842e1da
-
SHA512
80524353384a5cf09a2eb3ccf119e57d8d1d046b82ed11d96dc182e84eb9ebae0957bdecfd9186fa2b7c4738e629292a02dea446ad17816a9c0ced28fcdc7d0b
Score10/10-
RedLine
RedLine Stealer is a malware family written in C#, first appearing in early 2020.
-
RedLine Payload
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-